Microsoft Windows Finger Security Bypass / C2 Channel
Posted by deepcore on September 15, 2020 – 10:23 am
Microsoft Windows TCPIP Finger Command finger.exe that ships with the OS, can be used as a file downloader and makeshift C2 channel. Legitimate use of Windows Finger Command is to send Finger Protocol queries to remote Finger daemons to retrieve user information. However, the finger client can also save the remote server response to disk using the command line redirection operator.
Post a reply
You must be logged in to post a comment.